CNNVD-202511-1830 Information

CNNVD ID

CNNVD-202511-1830

Related CVE

CVE-2025-13238

• CNNVD Published: 2025-11-16

Description (Chinese)

Bdtask Flight Booking Software是孟加拉国Bdtask公司的一个航空订票软件。 Bdtask Flight Booking Software存在代码问题漏洞，该漏洞源于对文件/agent/profile/edit中组件Edit Profile Page的错误操作，可能导致无限制上传。

Description (English)

Bdtask Bright Booking Software is an aviation booking software for Bdtask in Bangladesh. Bdtask Flight Booking Software has a code problem loophole, which stems from an error in the operation of Edit Profile Page in file/agent/profile/edit, which may lead to unlimited upload.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

Bdtask

Published

2025-11-16

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.332564 https://github.com/4m3rr0r/PoCVulDb/issues/6 https://vuldb.com/?submit.686895 https://vuldb.com/?id.332564